Apache Struts2 S2-012 Remote Code Execution Vulnerability CVE-2013-1965 Scanner

Details

Stay Up To Date

Follow @secforeveryone

Asset Type

domain,ip,url

Need Membership

Yes

Asset Verify

Yes

API Support

Yes

Estimate Time (Second)

Apache Struts2 S2-012 Remote Code Execution Vulnerability CVE-2013-1965 Scanner Detail

There is a remote code execution vulnerability in Apache Struts2 S2-012.

Apache Struts Showcase App 2.0.0 through 2.3.13, as used in Struts 2 before 2.3.14.3, allows remote attackers to execute arbitrary OGNL code via a crafted parameter name that is not properly handled when invoking a redirect.

Some Advice for Common Problems

Update your Apache Struts Server, to the latest version to eliminate this vulnerability.

Need a Full Assesment?

Get help from professional hackers. Learn about our penetration test service now!

Request Pentest Service